CVE-2024-20152

MEDIUM Year: 2024
CVSS v3 Score
4.4
Medium
Weakness Type
CWE-617
View all →

Vulnerability Description

In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue ID: MSV-1798.

Related Vulnerabilities

CVE-2018-17204

MEDIUM
CVSS:4.3(Medium)

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parse_group_prop_ntr_selection_method in lib/ofp-util.c. When decoding a group mod, it validates the group type and command...

CWE-6172018

CVE-2017-8372

MEDIUM
CVSS:4.7(Medium)

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted...

CWE-6172017

CVE-2020-29562

MEDIUM
CVSS:4.8(Medium)

The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4 text containing an irreversible character, fails an assertion in the code path and aborts the program, p...

CWE-6172020

CVE-2020-8618

MEDIUM
CVSS:4.9(Medium)

An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clien...

CWE-6172020

CVE-2020-10761

MEDIUM
CVSS:5.0(Medium)

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the...

CWE-6172020

CVE-2020-16092

LOW
CVSS:3.8(Low)

In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to...

CWE-6172020